Recently we’ve seen a new fake security product running around that has made improvements to the standard rogue. Typical rogues are annoying, but relatively easy to take care of. Previously, all you had to do was boot into safe mode with networking and remove the files and registry entries (or install Webroot). Support forums everywhere use safe mode with networking as the “go to” mode for virus removal as non-core components are not loaded at start up and it’s easier to isolate problems. In the vast majority of the rogues we see, they are not loaded in the few modules which start up in safe mode. Antivirus System does, however, and it also applies some new and improved social engineering tactics to fool you into thinking it’s a real program trying to help you.

I had a friend who was recently infected by this virus. It would not let me boot in safe mode either. I didn't want to wipe her computer so in order to get around this I booted in safe mode with command prompt. When the command prompt came up, I typed in "start explorer" and it brought up the explorer window and I was able to run Malwarebytes on it and clean it off. This was a week ago and she said it has been running fine since.